[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: log permissions

I just purged and reinstalled ppp, and created a connection using
pppconfig.

box:/etc/ppp# cat options | grep -v "^\$" | grep -v "^#"
asyncmap 0
auth
crtscts
lock
hide-password
modem
proxyarp
lcp-echo-interval 30
lcp-echo-failure 4
noipx
box:/etc/ppp# cat pap-secrets | grep -v "^\$" | grep -v "^#"
*       box.boxname.box        ""      *
guest   box.boxname.box        "*"     -
master  box.boxname.box        "*"     -
root    box.boxname.box        "*"     -
support box.boxname.box        "*"     -
stats   box.boxname.box        "*"     -
box.boxname.box        *       password
UserName provider PassWord
box:/etc/ppp# cd peers
box:/etc/ppp/peers# cat provider | grep -v "^\$" | grep -v "^#"
hide-password
noauth
connect "/usr/sbin/chat -v -f /etc/chatscripts/provider"
debug
/dev/ttyS1
115200
defaultroute
noipdefault
user UserName
remotename provider
ipparam provider
box:/etc/ppp/peers# cd ..
box:/etc/ppp# cat ../chatscripts/provider | grep -v "^\$" | grep -v "^#"
ABORT BUSY ABORT 'NO CARRIER' ABORT VOICE ABORT 'NO DIALTONE' ABORT 'NO
DIAL TONE' ABORT 'NO ANSWER'
'' ATZ
OK-AT-OK ATDT7777777
CONNECT \d\c
box:/etc/ppp#

/etc/ppp/options contains hide-password, as does
/etc/chatscripts/provider, using the current Woody ppp .debs (version
2.4.0f-1, and I don't know about how Slink does things).

-chet

-----
yet he has sorcery

On Fri, 3 Nov 2000, Pedro Zorzenon Neto wrote:

> Thanks for your help. Now the ppp.log is ok.
> 
> But, I did't change anything in the default configuration of ppp.
> I just used 'pppconfig' to create my connection to ISP.
>    
> Why was /var/log/ppp.log logging the password and also readable by everyone in the default configuration? I think that's a security hazard... (I noticed this only in 'slink')
>
Reply to: